GHSA-mh5c-679w-hh4r

Опубликовано: 03 сент. 2020

Источник: github

Github: Прошло ревью

Описание

Denial of Service in mongodb

Versions of mongodb prior to 3.1.13 are vulnerable to Denial of Service. The package fails to properly catch an exception when a collection name is invalid and the DB does not exist, crashing the application.

Recommendation

Upgrade to version 3.1.13 or later.

Ссылки

https://www.npmjs.com/advisories/1203

Пакеты

Наименование

mongodb

npm

Затронутые версииВерсия исправления

< 3.1.13

3.1.13